Jonathan Santilli

Problem solver, or at least he tries. He has more than two decades of experience working with various tech companies.

Joined on Dec 30, 2024

Jonathan Santilli

Jan 25

The Classic Bug: Command Injection in OpenCode's Server Mode

#api #backend #cybersecurity #security

5 min read

Jonathan Santilli

Jan 23

The Silent Trigger: How Formatters Became Attack Vectors in OpenCode

#opencode #ai #formatters #devsec

5 min read

Jonathan Santilli

Jan 22

When "Read This File" Means "Run This Code": LSP Configuration in OpenCode

#opencode #ai #lsp #devsec

4 min read

Jonathan Santilli

Jan 21

The repository that runs code: A story about MCP Configuration in OpenCode

#ai #mcp #opencode #devsec

5 min read

Jonathan Santilli

Mar 19 '25

The Hidden Dangers of Vibe Coding

#vibecoding #ai #devsevops

7 min read

Jonathan Santilli

Jan 17 '25

Leveraging Large Language Models for Cross-Component Vulnerability Detection

#ai #llm #appsec

3 min read

Jonathan Santilli

Jan 7 '25

SQL Injection: the vulnerability that refuses to die

#appsec #coderemediation #sast #ai

4 min read

Jonathan Santilli

Jan 1 '25

Access Control Security: Learning from Major Data Breaches

#securityengineering #owasp #cybersecurity #appsec

5 min read

DEV Community

Jonathan Santilli

Badges

One Year Club

Writing Debut

The Classic Bug: Command Injection in OpenCode's Server Mode

The Silent Trigger: How Formatters Became Attack Vectors in OpenCode

When "Read This File" Means "Run This Code": LSP Configuration in OpenCode

The repository that runs code: A story about MCP Configuration in OpenCode

The Hidden Dangers of Vibe Coding

Leveraging Large Language Models for Cross-Component Vulnerability Detection

SQL Injection: the vulnerability that refuses to die

Access Control Security: Learning from Major Data Breaches